"Sometimes the most obvious, is the most overlooked. Third-party network breaches equate to downstream partner breaches, and in this case, it appears the damages were widespread. The industry has got to do better. According to the recent reports, hackers had access to systems for nearly six months, completely undetected. Who would of thought a seemingly harmless inventory app would be the doorway in? Hackers always take the easiest path."

By Chris Brook -For the second time in the past year the Hard Rock Hotels and Casinos franchise is encouraging guests to keep tabs on their bank account statements for suspicious activity.

The hotel, resort, and casino chain on Thursday said it was alerted on June 6 that its systems were impacted by a security incident involving Sabre Hospitality Solutions (SHS) SynXis, an inventory management SaaS application.

According to SEC filings, Sabre had been investigating a data breach involving SynXis back in May. The SynXis service is used by nearly 500 hospitality companies, but until this week it wasn’t clear exactly which hotels were impacted.

According to a press release on Thursday, 11 Hard Rock properties, including the Hard Rock Hotel and Casino Las Vegas and the Hard Rock Hotel Cancun, were affected by the Sabre breach. As part of the breach, the chain claims an attacker gained access to SynXis account credentials, something which gave them access to unencrypted payment card information and a number of reservations processed via the reservation system. Continue reading original article here

Zenedge is here to help as we protect thousands of applicatons and networks from Cyber-crime. Contact us here

Stephen Gates, Chief Research Intelligence Analyst at Zenedge offers commentary on this latest breach in California:

"To most of us on the inside of cybersecurity circles, the constant news of organizations being breached comes as no surprise. The primary reason for Internet-based data breaches are the direct result of weak "web application security" postures. Organizations who moved their operations and data to the Internet years ago, still believe they can adequately protect their data with 20-year-old firewall technology. Those that can't recognize they are not protected, eventually will - once they make it to the news themselves."

By Veronica Miracle - FRESNO, Calif. (KFSN) -- Three Fresno suspects, accused of living off other people's money-- investigators said they found Andrew Clement, Katie Whala, and Randall McKinney with troves of stolen personal information last month.

One of the possible victims-- Fresno Unified English teacher Marcy Barnhart.

"Identity theft is just a scary thing. Can ruin your credit, ruin your life possibly."

"DDoS attacks are extremely easy to defeat, when the right defenses are "already" in place. Organizations who have prepared for the inevitable can completely ignore DDoS ransom threats from those who are looking to make a quick profit, from their threats of attack. Those who do pay the extortion demands are adding nothing more than "fuel to the fire" for the rest of us. Implementing the right defenses today is as simple as making a phone call."

From MIS Asia-The Home of Enterprise in Asia, By Avanti Kumar:

Digital security agency CyberSecurity Malaysia has confirmed that as of Friday (7 July 2017) a DDOS attack has hit four financial firms.

Early reports suggest that the DDOS (distributed denial of service) attacks, which come close on the heels of the recent WannaCry and Petya-variant threats, focused on several online brokerages on Wednesday (5 July 2017) and then on Friday.

Dato' Dr. Haji Amirudin Abdul Wahab (pic below), chief executive officer of CyberSecurity Malaysia, said: "We are investigating, monitoring and working closely with other agencies to mitigate this threat. As of Friday, 7 July 2017, we received a total of four (4) reports on this threat."

Stephen Gates, Chief Research Intelligence Analyst at Zenedge offers an opinion on the latest news featured below from the Financial Times:

"The incidents of Ransomware epidemics will continue for the foreseeable future. From legitimate websites hosting malicious updates, and people's continued inability to not get phished, to the usage of antiquated network protocols aiding in the lateral spread of infection, and the increase in copycat performers, experts all agree this is just the tip of the iceberg. Expect more of the same!" Please contact Zenedge here

Global companies ranging from shipping lines to advertising firms are still struggling with the havoc wreaked by the huge cyber attack that last week swept from Ukraine to organisations in more than 60 countries.

AP Moller-Maersk, WPP,Reckitt Benckiser and FedEx all said their businesses were still not back to normal after the ransomware attack last week compromised hundreds of thousands of computers, industrial equipment and other technology.

Some ports remain hobbled, packages are going missing and customers are struggling to place and track orders, the companies said. Read full article here

27 June, 2017 - Blog - We detail how cybersecurity startups are using AI to take a new approach to counter some of the most significant cyber threats.

Cybersecurity companies saw a record number of funding deals last year and on a quarterly basis Q1’17 was the most active quarter for deals to private cybersecurity companies over the last five years. Alongside overall rising investment activity, a number of cybersecurity companies are emerging to offer up novel solutions to age-old cyber threats by leveraging artificial intelligence (AI). According to CB Insights’ AI Deals Tracker, cybersecurity is the fourth most active industry for deals to companies applying AI.

The Mirai botnet is just the most high-profile example of the new weaponization of DDoS. Attacks are stronger than ever, and multilayer defenses are needed to prevent disruption and distraction, says Darren Anstee of Arbor Networks.

By Chris Williams - US Editor - Exclusive A massive trove of Microsoft's internal Windows operating system builds and chunks of its core source code have leaked online.

The data – some 32TB of official and non-public installation images and software blueprints that compress down to 8TB – were uploaded to betaarchive.com, the latest load of files provided just earlier this week. It is believed the confidential data in this dump was exfiltrated from Microsoft's in-house systems around March this year.

The leaked code is Microsoft's Shared Source Kit: according to people who have seen its contents, it includes the source to the base Windows 10 hardware drivers plus Redmond's PnP code, its USB and Wi-Fi stacks, its storage drivers, and ARM-specific OneCore kernel code. To read original article please click here

Zenedge is here to help and protects thousands of businesses from Cyber harm. Please contact us here

22 June - NEW DATA reveals 76% of UK CEO’s believe a cyber security breach to be a significant threat to business in 2017; significantly higher than global peers at just 61%. Consequently, 97% of British CEO’s are currently addressing possible cyber breaches in their organisation; far higher than the global average figure of 90%.

Richard Home, UK cyber security partner at PwC comments: “Most business boards now recognise that cyber security is a complex risk that requires their attention. The most successful leaders will be those who define a comprehensive, broad approach to governing cyber security.”

In defence of this, 58% of businesses have sought information, advice or guidance on the cyber security threats facing their organisations. Continue reading original article here

Zenedge has expanded our London- based team and is here to help. Please contact us here for more information

Taking as little as 24 hours to deploy, and requiring no installation or hardware, Encompass Cloud is completely customizable and essentially creates a cyber security perimeter around an organization’s own perimeter – all web traffic flows through Encompass Cloud prior to going into the organization. Encompass Cloud protects websites, networks and DNS servers from malicious bot traffic, DDoS attacks, malware, and thousands of known and zero-day vulnerabilities. Of particular value to Canadian organizations is that data resides within Canada, and is monitored 24×7 by top cyber security experts. Continue reading full article here

Zenedge forms trusted partnerships around the globe to offer the most innovative Cyber defense systems. For more information, please contact us here